api (rest) endpoints. closes #11

2023-09-09 00:01:16 +10:00
parent ffa8db7bd9
commit caf65a48c1
7 changed files with 98 additions and 40 deletions
--- a/server/middleware/authContext.ts
+++ b/server/middleware/authContext.ts
@@ -0,0 +1,49 @@
+import { defineEventHandler, parseCookies, setCookie, getCookie } from 'h3'
+import { serverSupabaseUser } from "#supabase/server";
+import AuthService from '~/lib/services/auth.service';
+
+import { User } from '@supabase/supabase-js';
+import { FullDBUser } from "~~/lib/services/service.types";
+
+// Explicitly type our context by 'Merging' our custom types with the H3EventContext (https://stackoverflow.com/a/76349232/95242)
+declare module 'h3' {
+  interface H3EventContext {
+    user?: User;              // the Supabase User
+    dbUser?: FullDBUser;      // the corresponding Database User
+    activeAccountId?: number; // the account ID that is active for the user
+  }
+}
+
+export default defineEventHandler(async (event) => {
+  const cookies = parseCookies(event)
+  if(cookies && cookies['sb-access-token']){
+    const user = await serverSupabaseUser(event);
+    if (user) {
+      event.context.user = user;
+
+      const authService = new AuthService();
+      let dbUser = await authService.getFullUserBySupabaseId(user.id);
+      
+      if (!dbUser && user) {
+        dbUser = await authService.createUser(user.id, user.user_metadata.full_name?user.user_metadata.full_name:"no name supplied", user.email?user.email:"no@email.supplied" );
+        console.log(`\n Created DB User \n ${JSON.stringify(dbUser)}\n`);
+      }
+  
+      if(dbUser){
+        event.context.dbUser = dbUser;
+        let activeAccountId;
+        const preferredAccountId = getCookie(event, 'preferred-active-account-id')
+        if(preferredAccountId && dbUser?.memberships.find(m => m.account_id === +preferredAccountId && !m.pending)){
+          activeAccountId = +preferredAccountId
+        } else {
+          const defaultActive = dbUser.memberships[0].account_id.toString();
+          setCookie(event, 'preferred-active-account-id', defaultActive, {expires: new Date(Date.now() + 1000 * 60 * 60 * 24  * 365 * 10)});
+          activeAccountId = +defaultActive;
+        }
+        if(activeAccountId){
+          event.context.activeAccountId = activeAccountId;
+        }
+      }
+    }
+  }
+});